Lucene search
+L

28 matches found

cve
cve
added 2017/11/15 4:0 p.m.56 views

CVE-2017-15270

CVE-2017-15270 affects PSFTPd Windows FTP Server 10.0.4 Build 729. The vulnerability is due to improper escaping of data when writing to CSV logs, allowing an attacker to hide data in the GUI and add arbitrary log entries via special characters (e.g., ") and commas. Connected sources also referen...

5.3CVSS5.2AI score0.06972EPSS
Exploits4References4Affected Software1
cve
cve
added 2017/11/15 4:0 p.m.58 views

CVE-2017-15272

CVE-2017-15272 concerns the PSFTPd Windows FTP Server (v10.0.4 Build 729). The server stores its configuration in PSFTPd.dat, an Access database that can be extracted. The data can be obtained even though the encrypt flag is set with the password “ITsILLEGAL,” because the password is not required...

5.3CVSS5.3AI score0.00561EPSS
Exploits4References3Affected Software1
cve
cve
added 2017/11/15 4:0 p.m.57 views

CVE-2017-15271

PSFTPd Windows FTP Server is affected by CVE-2017-15271 in the SFTP component (PSFTPd 10.0.4 Build 729). The issue is a use-after-free triggered remotely before authentication, due to a race condition in window message handling during cleanup of invalid connections, leading to a NULL pointer dere...

5.9CVSS5.4AI score0.08742EPSS
Exploits4References4Affected Software1
cvelist
cvelist
added 2017/11/15 4:0 p.m.35 views

CVE-2017-15269

The PSFTPd 10.0.4 Build 729 server does not prevent FTP bounce scans by default. These can be performed using "nmap -b" and allow performing scans via the FTP server...

4.9AI score0.015EPSS
Exploits4References3
zdt
zdt
added 2017/11/15 12:0 a.m.71 views

PSFTPd Windows FTP Server 10.0.4 Build 729 - Log Injection / Use-After-Free Vulnerability

Exploit for windows platform in category dos / poc Multiple Vulnerabilities in PSFTPd Windows FTP Server ===================================================== Overview -------- Confirmed Affected Versions: 10.0.4 Build 729 Confirmed Patched Versions: None Vendor: Sergei Pleis Softwareentwicklung...

5CVSS4.9AI score0.08742EPSS
Exploits4
exploitpack
exploitpack
added 2017/11/14 12:0 a.m.77 views

PSFTPd Windows FTP Server 10.0.4 Build 729 - Log Injection Use-After-Free

PSFTPd Windows FTP Server 10.0.4 Build 729 - Log Injection Use-After-Free X41 D-Sec GmbH Security Advisory: X41-2017-006 Multiple Vulnerabilities in PSFTPd Windows FTP Server ===================================================== Overview -------- Confirmed Affected Versions: 10.0.4 Build 729...

5CVSS0.08742EPSS
Exploits4
exploitdb
exploitdb
added 2017/11/14 12:0 a.m.70 views

PSFTPd Windows FTP Server 10.0.4 Build 729 - Log Injection / Use-After-Free

X41 D-Sec GmbH Security Advisory: X41-2017-006 Multiple Vulnerabilities in PSFTPd Windows FTP Server ===================================================== Overview -------- Confirmed Affected Versions: 10.0.4 Build 729 Confirmed Patched Versions: None Vendor: Sergei Pleis Softwareentwicklung Vend...

5.9CVSS4.9AI score0.08742EPSS
Exploits4
packetstorm
packetstorm
added 2017/11/10 12:0 a.m.76 views

PSFTPd Windows FTP Server 10.0.4 Build 729 Use-After-Free / Log Injection

X41 D-Sec GmbH Security Advisory: X41-2017-006 Multiple Vulnerabilities in PSFTPd Windows FTP Server ===================================================== Overview -------- Confirmed Affected Versions: 10.0.4 Build 729 Confirmed Patched Versions: None Vendor: Sergei Pleis Softwareentwicklung Vend...

5.6AI score0.08742EPSS
Exploits4
Rows per page
Query Builder